CVE-2008-6492
CVE-2008-6492 describes an unrestricted file upload in process.php for the product “Tizag Countdown Creator 3.” An attacker can upload a file with an executable extension via index.php and then access the uploaded file in the pics/ directory to achieve remote code execution. Details note that som...